Ultimate CSV Importer - Version 3.7.1

Version Description

Release Info

Developer	smackcoders
Plugin	Ultimate CSV Importer
Version	3.7.1
Comparing to
See all releases

Code changes from version 3.7 to 3.7.1

Files changed (10) hide show

Readme.txt +11 -4
includes/WPImporter_includes_helper.php +15 -0
index.php +2 -2
js/ultimate-importer-free.js +3 -1
lib/jquery-plugins/UploadHandler.php +8 -0
modules/export/templates/export.php +0 -1
templates/import.php +4 -2
templates/menu.php +5 -2
templates/readfile.php +6 -0
templates/versioncheck.php +5 -2

Readme.txt CHANGED Viewed

	@@ -4,8 +4,8 @@ Donate link: http://www.smackcoders.com/donate.html
4	Tags: batch, csv, excel, import, spreadsheet, autoblog, Autoblogger, csvimporter, data, dataimport, importer, wpcsvimporter, wpimporter, acf, auto blog, csv import, csv to post, data import, Easy CSV Importer, eci, import plugin, admin, user, users, Advanced CSV Import, Advanced CSV Importer, affiliate, amazon, author, automatic, blog, bulk, bulk edit, bulk editor, categories, comments, content, csv file, csv format, csv importer, custom post, e-commerce, free, images, language, manage, media, meta, multisite, News, page, photos, pictures, plugin, Post, seo, shop, shortcode, tags, Taxonomy, text, title, video, eshop, woocommerce, wordpress, xml, youtube, export
5	Requires at least: 3.9
6	Tested up to: 4.1.1
7	- Stable tag: 3.7
8	- Version: 3.7
9	Author: smackcoders
10	Author URI: http://profiles.wordpress.org/smackcoders/
11
	@@ -15,7 +15,7 @@ Advanced CSV Importer plugin to import/export posts, pages, eshop products, cust
15
16	== Description ==
17
18	- Wordpress Ultimate CSV Importer V3.7 is available as live demo for users to test drive all new features, improvements and changes from http://www.wpultimatecsvimporter.com/. Users can get product manual and sample csv files etc., from - http://www.wpultimatecsvimporter.com/
19
20	New Features of Wordpress Ultimate CSV Importer Pro V4.0
21
	@@ -32,7 +32,7 @@ Wordpress Ultimate CSV Importer V3.7 is available as live demo for users to test
32	* Mapping template feature with edit option.
33	* Auto mapping and specific column update in Update feature.
34
35	- ** Now stable version 3.7 available to download with hotlinked featured image fix. Visit [www.wpultimatecsvimporter.com](http://www.wpultimatecsvimporter.com) for more news and future plans.
36
37	WP Ultimate CSV Importer Plugin proven much effective advanced CSV File Importer With Ultimate User Friendly Features. It is much easy now even for newbies to import any csv file as any wordpress post type and associated fields by simple mapping feature. Now import any CSV file as thousands of post, page and custom post types. This is admin side free plugin helps you in bulk edit, create and import posts type for your blog or site.
38
	@@ -197,6 +197,10 @@ This will solve your issue or get support from hosting if you dint have sufficie
197
198	== Changelog ==
199




200	= 3.7 =
201	* Fixed: Featured image hotlink issue.
202
	@@ -434,6 +438,9 @@ This will solve your issue or get support from hosting if you dint have sufficie
434
435	== Upgrade Notice ==
436



437	= 3.7 =
438	* Upgrage now for minor bug fixes.
439


4	Tags: batch, csv, excel, import, spreadsheet, autoblog, Autoblogger, csvimporter, data, dataimport, importer, wpcsvimporter, wpimporter, acf, auto blog, csv import, csv to post, data import, Easy CSV Importer, eci, import plugin, admin, user, users, Advanced CSV Import, Advanced CSV Importer, affiliate, amazon, author, automatic, blog, bulk, bulk edit, bulk editor, categories, comments, content, csv file, csv format, csv importer, custom post, e-commerce, free, images, language, manage, media, meta, multisite, News, page, photos, pictures, plugin, Post, seo, shop, shortcode, tags, Taxonomy, text, title, video, eshop, woocommerce, wordpress, xml, youtube, export
5	Requires at least: 3.9
6	Tested up to: 4.1.1
7	+ Stable tag: 3.7.1
8	+ Version: 3.7.1
9	Author: smackcoders
10	Author URI: http://profiles.wordpress.org/smackcoders/
11

15
16	== Description ==
17
18	+ Wordpress Ultimate CSV Importer V3.7.1 is available as live demo for users to test drive all new features, improvements and changes from http://www.wpultimatecsvimporter.com/. Users can get product manual and sample csv files etc., from - http://www.wpultimatecsvimporter.com/
19
20	New Features of Wordpress Ultimate CSV Importer Pro V4.0
21

32	* Mapping template feature with edit option.
33	* Auto mapping and specific column update in Update feature.
34
35	+ ** Now stable version 3.7.1 available to download with hotlinked featured image fix. Visit [www.wpultimatecsvimporter.com](http://www.wpultimatecsvimporter.com) for more news and future plans.
36
37	WP Ultimate CSV Importer Plugin proven much effective advanced CSV File Importer With Ultimate User Friendly Features. It is much easy now even for newbies to import any csv file as any wordpress post type and associated fields by simple mapping feature. Now import any CSV file as thousands of post, page and custom post types. This is admin side free plugin helps you in bulk edit, create and import posts type for your blog or site.
38

197
198	== Changelog ==
199
200	+ = 3.7.1 =
201	+ * Added: Security fix for curl.
202	+ * Added: Security fix for session status.
203	+
204	= 3.7 =
205	* Fixed: Featured image hotlink issue.
206

438
439	== Upgrade Notice ==
440
441	+ = 3.7.1 =
442	+ *Upgrade now for security fix.
443	+
444	= 3.7 =
445	* Upgrage now for minor bug fixes.
446

includes/WPImporter_includes_helper.php CHANGED Viewed

@@ -1143,6 +1143,21 @@ class CallWPImporterObj extends WPImporter_includes_helper
             			self::$_instance = new WPImporter_includes_helper();
             		return self::$_instance;
+            	}
+            }
             class WPImpCSVParserLib {


1143	self::$_instance = new WPImporter_includes_helper();
1144	return self::$_instance;
1145	}
1146	+ public static function checkSecurity(){
1147	+ $msg = 'You are not allowed to do this operation! Please contact your admin';
1148	+ if(!function_exists('session_status')){
1149	+ if(session_id() == '')
1150	+ return $msg;
1151	+ }
1152	+ else if(session_status() != PHP_SESSION_ACTIVE)
1153	+ return $msg;
1154	+ else if(!defined('ABSPATH'))
1155	+ return $msg;
1156	+ else if (php_sapi_name() == "cli")
1157	+ return $msg;
1158	+ else
1159	+ return 'true';
1160	+ }
1161	}
1162
1163	class WPImpCSVParserLib {

index.php CHANGED Viewed

	@@ -2,7 +2,7 @@
2	/******************************
3	* Plugin Name: WP Ultimate CSV Importer
4	* Description: A plugin that helps to import the data's from a CSV file.
5	- * Version: 3.7
6	* Author: smackcoders.com
7	* Plugin URI: http://www.smackcoders.com/wp-ultimate-csv-importer-pro.html
8	* Author URI: http://www.smackcoders.com/wp-ultimate-csv-importer-pro.html
	@@ -75,7 +75,7 @@ define('WP_CONST_ULTIMATE_CSV_IMP_URL', 'http://www.smackcoders.com/wp-ultimate-
75	define('WP_CONST_ULTIMATE_CSV_IMP_NAME', 'WP Ultimate CSV Importer');
76	define('WP_CONST_ULTIMATE_CSV_IMP_SLUG', 'wp-ultimate-csv-importer');
77	define('WP_CONST_ULTIMATE_CSV_IMP_SETTINGS', 'WP Ultimate CSV Importer');
78	- define('WP_CONST_ULTIMATE_CSV_IMP_VERSION', '3.7');
79	define('WP_CONST_ULTIMATE_CSV_IMP_DIR', WP_PLUGIN_URL . '/' . WP_CONST_ULTIMATE_CSV_IMP_SLUG . '/');
80	define('WP_CONST_ULTIMATE_CSV_IMP_DIRECTORY', plugin_dir_path(__FILE__));
81	define('WP_CSVIMP_PLUGIN_BASE', WP_CONST_ULTIMATE_CSV_IMP_DIRECTORY);


2	/******************************
3	* Plugin Name: WP Ultimate CSV Importer
4	* Description: A plugin that helps to import the data's from a CSV file.
5	+ * Version: 3.7.1
6	* Author: smackcoders.com
7	* Plugin URI: http://www.smackcoders.com/wp-ultimate-csv-importer-pro.html
8	* Author URI: http://www.smackcoders.com/wp-ultimate-csv-importer-pro.html

75	define('WP_CONST_ULTIMATE_CSV_IMP_NAME', 'WP Ultimate CSV Importer');
76	define('WP_CONST_ULTIMATE_CSV_IMP_SLUG', 'wp-ultimate-csv-importer');
77	define('WP_CONST_ULTIMATE_CSV_IMP_SETTINGS', 'WP Ultimate CSV Importer');
78	+ define('WP_CONST_ULTIMATE_CSV_IMP_VERSION', '3.7.1');
79	define('WP_CONST_ULTIMATE_CSV_IMP_DIR', WP_PLUGIN_URL . '/' . WP_CONST_ULTIMATE_CSV_IMP_SLUG . '/');
80	define('WP_CONST_ULTIMATE_CSV_IMP_DIRECTORY', plugin_dir_path(__FILE__));
81	define('WP_CSVIMP_PLUGIN_BASE', WP_CONST_ULTIMATE_CSV_IMP_DIRECTORY);

js/ultimate-importer-free.js CHANGED Viewed

	@@ -583,7 +583,9 @@ function importRecordsbySettings(siteurl)
583	document.getElementById('terminatenow').style.display = "none";
584	return false;
585	}
586	- var advancemedia = ~~document.getElementById('advance_media_handling').checked~~;


587	var postdata = new Array();
588	postdata = {'dupContent':dupContent,'dupTitle':dupTitle,'importlimit':importlimit,'limit':currentlimit,'totRecords':tot_no_of_records,'selectedImporter':importas,'uploadedFile':uploadedFile,'tmpcount':tmpCnt,'importinlineimage':importinlineimage,'inlineimagehandling':imagehandling,'inline_image_location':inline_image_location,'advance_media':advancemedia,}
589


583	document.getElementById('terminatenow').style.display = "none";
584	return false;
585	}
586	+ var advancemedia = "";
587	+ if(importas == 'post' \|\| importas == 'page' \|\| importas == 'custompost' \|\| importas == 'eshop')
588	+ advancemedia = document.getElementById('advance_media_handling').checked;
589	var postdata = new Array();
590	postdata = {'dupContent':dupContent,'dupTitle':dupTitle,'importlimit':importlimit,'limit':currentlimit,'totRecords':tot_no_of_records,'selectedImporter':importas,'uploadedFile':uploadedFile,'tmpcount':tmpCnt,'importinlineimage':importinlineimage,'inlineimagehandling':imagehandling,'inline_image_location':inline_image_location,'advance_media':advancemedia,}
591

lib/jquery-plugins/UploadHandler.php CHANGED Viewed

	@@ -13,6 +13,10 @@
13	require_once("../../../../../wp-load.php");
14	require_once("../../includes/WPImporter_includes_helper.php");
15




16	class UploadHandler
17	{
18
	@@ -1080,6 +1084,10 @@ class UploadHandler
1080	$index = null, $content_range = null)
1081	{
1082	$post_url = admin_url() . 'admin.php?page=' . WP_CONST_ULTIMATE_CSV_IMP_SLUG . '/index.php&__module=' . $_POST['current_module'] . '&step=uploadfile';




1083	if($post_url != $_SERVER['HTTP_REFERER'])
1084	die('Your requested url were wrong! Please contact your admin.');
1085	$file = new stdClass();


13	require_once("../../../../../wp-load.php");
14	require_once("../../includes/WPImporter_includes_helper.php");
15
16	+ $impCheckobj = CallWPImporterObj::checkSecurity();
17	+ if($impCheckobj != 'true')
18	+ die($impCheckobj);
19	+
20	class UploadHandler
21	{
22

1084	$index = null, $content_range = null)
1085	{
1086	$post_url = admin_url() . 'admin.php?page=' . WP_CONST_ULTIMATE_CSV_IMP_SLUG . '/index.php&__module=' . $_POST['current_module'] . '&step=uploadfile';
1087	+ $impCheckobj = CallWPImporterObj::checkSecurity();
1088	+ if($impCheckobj != 'true')
1089	+ die($impCheckobj);
1090	+
1091	if($post_url != $_SERVER['HTTP_REFERER'])
1092	die('Your requested url were wrong! Please contact your admin.');
1093	$file = new stdClass();

modules/export/templates/export.php CHANGED Viewed

	@@ -10,7 +10,6 @@ if(!isset($_SERVER['HTTP_REFERER'])) {
10	die('Your requested url were wrong! Please contact your admin.');
11	}
12	require_once('../../../../../../wp-load.php');
13	-
14	$nonce = $_POST['nonce'];
15	//echo '<pre>'; print_r($sitedomain); echo '</pre>';
16	if ( ! wp_verify_nonce( $nonce, 'my-nonce' ) ) {


10	die('Your requested url were wrong! Please contact your admin.');
11	}
12	require_once('../../../../../../wp-load.php');

13	$nonce = $_POST['nonce'];
14	//echo '<pre>'; print_r($sitedomain); echo '</pre>';
15	if ( ! wp_verify_nonce( $nonce, 'my-nonce' ) ) {

templates/import.php CHANGED Viewed

	@@ -34,8 +34,10 @@
34	* Notices must display the words
35	* "Copyright Smackcoders. 2014. All rights reserved".
36	********************************************************************************/
37	- ~~if(!defined(~~'~~ABSPATH~~'))
38	- ~~die('Your~~ ~~requested~~ ~~url were wrong! Please contact your admin.'~~);


39	require_once(WP_CONST_ULTIMATE_CSV_IMP_DIRECTORY . 'lib/skinnymvc/core/base/SkinnyBaseActions.php');
40	require_once(WP_CONST_ULTIMATE_CSV_IMP_DIRECTORY . 'lib/skinnymvc/core/SkinnyActions.php');
41	$skinnyObj = new CallWPImporterObj();


34	* Notices must display the words
35	* "Copyright Smackcoders. 2014. All rights reserved".
36	********************************************************************************/
37	+ include '../includes/WPImporter_includes_helper.php';
38	+ $impCheckobj = CallWPImporterObj::checkSecurity();
39	+ if($impCheckobj != 'true')
40	+ die($impCheckobj);
41	require_once(WP_CONST_ULTIMATE_CSV_IMP_DIRECTORY . 'lib/skinnymvc/core/base/SkinnyBaseActions.php');
42	require_once(WP_CONST_ULTIMATE_CSV_IMP_DIRECTORY . 'lib/skinnymvc/core/SkinnyActions.php');
43	$skinnyObj = new CallWPImporterObj();

templates/menu.php CHANGED Viewed

	@@ -5,8 +5,11 @@
5	* Proprietary and confidential
6	* You can contact Smackcoders at email address info@smackcoders.com.
7	*******************************************************************************************/
8	- ~~if(!defined(~~'~~ABSPATH~~'))
9	- ~~die('Your~~ ~~requested~~ ~~url were wrong! Please contact your admin.'~~);



10	$post = $page = $custompost = $categories = $users = $customtaxonomy = $comments = $eshop = $wpcommerce = $woocommerce = $settings = $support = $dashboard = $export = $mappingtemplate = $filemanager = $schedulemapping = $marketpress = $customerreviews = '';
11	$impCEM = CallWPImporterObj::getInstance();
12	$get_settings = array();


5	* Proprietary and confidential
6	* You can contact Smackcoders at email address info@smackcoders.com.
7	*******************************************************************************************/
8	+ include '../includes/WPImporter_includes_helper.php';
9	+ $impCheckobj = CallWPImporterObj::checkSecurity();
10	+ if($impCheckobj != 'true')
11	+ die($impCheckobj);
12	+
13	$post = $page = $custompost = $categories = $users = $customtaxonomy = $comments = $eshop = $wpcommerce = $woocommerce = $settings = $support = $dashboard = $export = $mappingtemplate = $filemanager = $schedulemapping = $marketpress = $customerreviews = '';
14	$impCEM = CallWPImporterObj::getInstance();
15	$get_settings = array();

templates/readfile.php CHANGED Viewed

	@@ -36,7 +36,13 @@
36	********************************************************************************/
37
38	require_once('../includes/WPImporter_includes_helper.php');




39	require_once('../../../../wp-load.php');


40	$requested_module = $_REQUEST['checkmodule'];
41	$post_url = admin_url() . 'admin.php?page=' . WP_CONST_ULTIMATE_CSV_IMP_SLUG . '/index.php&__module=' . $requested_module . '&step=mapping_settings';
42	if($post_url != $_SERVER['HTTP_REFERER'])


36	********************************************************************************/
37
38	require_once('../includes/WPImporter_includes_helper.php');
39	+ $impCheckobj = CallWPImporterObj::checkSecurity();
40	+ if($impCheckobj != 'true')
41	+ die($impCheckobj);
42	+
43	require_once('../../../../wp-load.php');
44	+ $requested_module = "";
45	+ if(isset($requested_module))
46	$requested_module = $_REQUEST['checkmodule'];
47	$post_url = admin_url() . 'admin.php?page=' . WP_CONST_ULTIMATE_CSV_IMP_SLUG . '/index.php&__module=' . $requested_module . '&step=mapping_settings';
48	if($post_url != $_SERVER['HTTP_REFERER'])

templates/versioncheck.php CHANGED Viewed

	@@ -34,8 +34,11 @@
34	* Notices must display the words
35	* "Copyright Smackcoders. 2014. All rights reserved".
36	********************************************************************************/
37	- ~~if(!defined(~~'~~ABSPATH~~'))
38	- ~~die('Your~~ ~~requested~~ ~~url were wrong! Please contact your admin.'~~);



39	global $wpdb;
40	$all_arr = array();
41	$all_arr = $_REQUEST['postdata'];


34	* Notices must display the words
35	* "Copyright Smackcoders. 2014. All rights reserved".
36	********************************************************************************/
37	+ include '../includes/WPImporter_includes_helper.php';
38	+ $impCheckobj = CallWPImporterObj::checkSecurity();
39	+ if($impCheckobj != 'true')
40	+ die($impCheckobj);
41	+
42	global $wpdb;
43	$all_arr = array();
44	$all_arr = $_REQUEST['postdata'];